Technical Information
- <SYSTEM32>\tasks\nvngxupdatecheckdaily_{fa420e5f-0e5f-0e5f-0e5f-fa420e5f0e5f}
- %WINDIR%\syswow64\explorer.exe
- %WINDIR%\explorer.exe
- iexplore.exe
- firefox.exe
- %TEMP%\44da.tmp
- %APPDATA%\aawurth
- %APPDATA%\wiwhrsg
- %APPDATA%\aawurth
- %APPDATA%\wiwhrsg
- 'th####earback.net':80
- http://th####earback.net/
- DNS ASK th####earback.net
- '%WINDIR%\syswow64\explorer.exe'
- '%WINDIR%\explorer.exe'